Nope, not a joke and I’m not selling it… Just passing on some info…
You may want to take advantage of this special Comodo is promoting.
[url]Sectigo
Purchase the cheap $5/year Positive SSL and you will be offered a free upgrade to an EV cert plus a free year of HackerGuardian and HackerProof during the checkout process.
This sounds to good to be true but I just made this $5 order and it included this below.
Comodo EV SSL $0.00
TrustLogo $0.00
EV Enhancer $0.00
Comodo HackerProof Trust Mark including Daily Vulnerability Scanning $0.00
Comodo HackerGuardian PCI Scan Control Center $0.00
Note: EV certs are not instantly available because of the validation process… You will need to fax in documents to verify your identity and business before they are issued.
Here is some more news about this
[url]VPS Hosting | Free VPS Server Trial | SSD Storage for $2.99
I would like to warn anyone going with Comodo. They have to be the WORST company I’ve ever dealt with for this type of thing. Their customer support is not responsive and the responses we do get are in broken English and unclear. You really do get what you pay for in this case. We’ve faxed them our documents 2x and they say they don’t get them then they say they need something else. McAfee is always willing to work with us over the phone. You definitely get what you pay for with McAfee. Not so much with Comodo. Think twice before going through the painful process with them…horrible.
I’m not sure if this is true all around for Comodo. I’ve had an InstantSSL cert now for at least 2 years and have always been happy with their customer service.
I just purchased a PositiveSSL with the EV upgrade from them. So far I’ve been very happy. I got the regular PositiveSSL cert in just a few minutes and was able to install it no problem.
The EV has been a little different, but so far their customer service has been great about it. The fault is really my own so I can’t blame them. I’ve had some issues with verification, but they’ve been great about helping me out.
I’ve had my account with Comodo for quite a while now so maybe that has helped me, I don’t know. Whatever the reason, Comodo has been good with me.
Brandon
[quote name=‘brandonvd’]I’m not sure if this is true all around for Comodo. I’ve had an InstantSSL cert now for at least 2 years and have always been happy with their customer service.
I just purchased a PositiveSSL with the EV upgrade from them. So far I’ve been very happy. I got the regular PositiveSSL cert in just a few minutes and was able to install it no problem.
The EV has been a little different, but so far their customer service has been great about it. The fault is really my own so I can’t blame them. I’ve had some issues with verification, but they’ve been great about helping me out.
I’ve had my account with Comodo for quite a while now so maybe that has helped me, I don’t know. Whatever the reason, Comodo has been good with me.
Brandon[/QUOTE]
I’ve definitely not had the experience you’ve had then and many others have not as well.
[url]http://www.sslshopper.com/comodo-certificate-authority-reviews.html[/url]
[url]http://www.sslshopper.com/certificate-authority-reviews.html[/url]
Not trying to totally turn off people but I just wanted to give my experience so far. Not good.
I have an EV-SSL from Comodo and now HackerGuarding as part of PCI-DSS compliance. There are obvious issues as you never speak to one person in one department.
Took us a few tries to get the certificate issued however the increase in orders made the trouble worth it.
[quote name=‘Ion_Cannon’]I’ve definitely not had the experience you’ve had then and many others have not as well.
[URL]http://www.sslshopper.com/comodo-certificate-authority-reviews.html[/URL]
[URL]http://www.sslshopper.com/certificate-authority-reviews.html[/URL]
Not trying to totally turn off people but I just wanted to give my experience so far. Not good.[/quote]
I should mention that I purchased the certificate directly from COMODO, not through a ‘reseller’ so my experience has been a lot better than what you might have experienced.
[quote name=‘JesseLeeStringer’]I have an EV-SSL from Comodo and now HackerGuarding as part of PCI-DSS compliance. There are obvious issues as you never speak to one person in one department.
Took us a few tries to get the certificate issued however the increase in orders made the trouble worth it.
I should mention that I purchased the certificate directly from COMODO, not through a ‘reseller’ so my experience has been a lot better than what you might have experienced.[/QUOTE]
Cool, hopefully they get me straightened out. Our mailing address is a PO BOX and our office doesn’t get mail delivered to it (Rural area) and our warehouse (FedEx/UPS) is at a different location so this has pretty much blown their heads up. They can’t seem to comprehend it no matter how much we explain it. McAfee seemed a lot less confused but they are 2x the price. so…
Join the club with the address thing. Man, that is annoying. All of our mail goes to our P.O. Box as well. To top that off, my physical address doesn’t exist in the USPS database. That means I have all sorts of issues with mail. It also means that I can’t order anything from Best Buy or Microsoft or any other company that tries to verify an address through USPS.
For some reason people from the cities just don’t comprehend this and it totally confuses them.
Luckily for me, my partner has the Saltwater To Go address on the business license in a different county so everything is fine.
Brandon
[quote name=‘Ion_Cannon’]I would like to warn anyone going with Comodo. They have to be the WORST company I’ve ever dealt with for this type of thing. Their customer support is not responsive and the responses we do get are in broken English and unclear. You really do get what you pay for in this case. We’ve faxed them our documents 2x and they say they don’t get them then they say they need something else. McAfee is always willing to work with us over the phone. You definitely get what you pay for with McAfee. Not so much with Comodo. Think twice before going through the painful process with them…horrible.[/quote]
The SSL certificates from Comodo are so good as any others, but the PCI compliance products and scans are horrible. Every scan shows other results without to make any changes on the server, the support had no idea why…
Martfox offers TrustKeeper PCI DSS (scan up to 10 IP’s for EUR 190.00/1 year) and TrustKeeper SSL Plus (scan + SSL certificate for EUR 255.00/1 year).
Trustwave SecureSite Certificates protect the transfer of sensitive data on Web sites, intranets, and extranets using a minimum of 40-bit and up to 256-bit encryption (the highest that each individual browser will allow). The Trustwave Secure Site SSL Certificate includes a $100,000 warranty and the Trustwave Secured Seal.
[quote name=‘indy0077’]The SSL certificates from Comodo are so good as any others, but the PCI compliance products and scans are horrible. Every scan shows other results without to make any changes on the server, the support had no idea why…
Martfox offers TrustKeeper PCI DSS (scan up to 10 IP’s for EUR 190.00/1 year) and TrustKeeper SSL Plus (scan + SSL certificate for EUR 255.00/1 year).
Trustwave SecureSite Certificates protect the transfer of sensitive data on Web sites, intranets, and extranets using a minimum of 40-bit and up to 256-bit encryption (the highest that each individual browser will allow). The Trustwave Secure Site SSL Certificate includes a $100,000 warranty and the Trustwave Secured Seal.[/quote]
HackerGuardian appears to work just fine, I’ve had more than one call from McAfee to try and sell me PCI scanning product for triple the cost of our current one.
I’ve never heard of Trustwave and so I went looking, couldn’t see any statement that they were an approved PCI Scanning Vendor which I believe is 100% necessary if you are attempting to become compliant.
For this reason we’re staying close to Comodo at this time - Proven results and everything is integrated so less paperwork for the compliance department. Which brings me back to this thread offer: Comodo typically provide a 12 month trial of Hackerguardian with purchase of an EV SSL certificate - A lot cheaper at the current rate of $5/$10 and it provides $250,000 worth of identity insurance to the customer (+150k against trustwave)
I paid $600 for the EV SSL earlier in the year, surprised to see this company provide it at such a low cost but I guess it’s the industry.
Well, you do have to pay for 2 years to be able to get the EVSSL. Since, if you purchase more than 1 year, the price is $10.00 per year, it adds up to $20.00. That’s getting closer to your $600.00 Jesse, if it makes you feel better.
Of course I don’t actually have my EVSSL in place yet, so I just might be talking out of my butt and not actually ever receive my EVSSL. We’ll see.
Brandon
[quote name=‘JesseLeeStringer’]I’ve never heard of Trustwave and so I went looking, couldn’t see any statement that they were an approved PCI Scanning Vendor which I believe is 100% necessary if you are attempting to become compliant.[/quote]
Here are some information about Trustwave:
[url]https://www209.americanexpress.com/merchant/singlevoice/dsw/FrontServlet?request_type=dsw&pg_nm=faq&ln=en&frm=SG#22[/url]
[url]http://www.cio.com.au/article/346214/visa_fraud_alert_puts_banks_payment_processors_guard/[/url]
[url]https://www.trustwave.com/partners.php[/url]
TrustWave is an approved vendor. Seems to be popular.
If you look here at the referenced pdf, Trust Wave scanned for many approved vendors including chase.
[URL=“http://usa.visa.com/download/merchants/cisp-list-of-pcidss-compliant-service-providers.pdf”]http://usa.visa.com/download/merchants/cisp-list-of-pcidss-compliant-service-providers.pdf[/URL]
They are also on the approved list:
[URL=“https://www.pcisecuritystandards.org/pdfs/asv_report.html”]https://www.pcisecuritystandards.org/pdfs/asv_report.html[/URL]
Bob
Well after a week I got the HackerProof service worked out, site passed the vuln scan no problems. I hardened it awhile back and it passed McAfee as well so I wasn’t too worried about the daily PCI scan. Now if I can get them to get me the EV-SSL it will all be okay. I really wish their customer support was a little better. It has improved after I sent them a couple of scathing E-mail’s. For the price offered for the year I can’t really complain TOO much but if I don’t receive the proper service now, why on earth would I pay full price for it in the future? We’ll see!
I’ve had a positiveSSL for a while now. Placed the order for a new positiveSSL for 2 years so I could get the EV SSL for the full two years, I would have bought ten years but that’s all they will allow EV SSL to given for.
Got the ev ssl within a few days. After id signed the forms, everything went through ok, the only thing that I needed to do was change the whois info to perfectly match the info that was submitted with the EV SSL. With it being a co.uk domain I had to do it through nominet, but they were brilliant.
Comodo’s customer service in the UK has been excellent. Any questions or problems are answered straight away, when i first got the ev ssl they had only given me it for 1 year, I rang them up and within 10 minutes they had sent me through a new one for the full 2 years. I can’t recommend them highly enough.
The hackerproof, has been approved and my site passed, there were a few issues with the pci scanning, but of the 10 or so problems they found all were reported by me with the evidence that they were false positives and they were all accepted as such. I think that the problem when using centos/redhat is, they backport security fixes leaving the version number as is just changing the release number, which screws with the pci scanning.